Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Tracking & Law Enforcement

HTC Settles US Charges of Security Flaws on Devices

WASHINGTON – Taiwan-based electronics maker HTC settled charges with US regulators that it failed to provide adequate security for smartphones and tablet computers sold to Americans, officials said Friday.

WASHINGTON – Taiwan-based electronics maker HTC settled charges with US regulators that it failed to provide adequate security for smartphones and tablet computers sold to Americans, officials said Friday.

The Federal Trade Commission said HTC agreed “to develop and release software patches to fix vulnerabilities found in millions of HTC devices.”

No financial penalty against the company was announced.

The FTC said it investigated allegations that HTC “failed to take reasonable steps to secure the software it developed for its smartphones and tablet computers, introducing security flaws that placed sensitive information about millions of consumers at risk.”

The settlement requires HTC America “to establish a comprehensive security program designed to address security risks during the development of HTC devices and to undergo independent security assessments every other year for the next 20 years,” the statement said.

RelatedCarriers Cripple Android, Prioritize Profits Over Protection

An FTC complaint filed at the same time as the settlement said HTC, which makes devices using both Microsoft Windows and the Google Android operating systems, made modifications to software which sacrificed security.

In some instances, the complaint said, HTC “undermined the Android operating system’s permission-based security model.”

Advertisement. Scroll to continue reading.

The flaws could allow hackers to introduce malware which could “surreptitiously record phone conversations or other sensitive audio, to surreptitiously track a user’s physical location, and to perpetrate ‘toll fraud,’” a practice of sending text messages in order to collect fees, the FTC said.

The FTC said that malware could also be used to steal financial account numbers or medical information stored on the devices.

Written By

AFP 2023

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Discover strategies for vendor selection, integration to minimize redundancies, and maximizing ROI from your cybersecurity investments. Gain actionable insights to ensure your stack is ready for tomorrow’s challenges.

Register

Dive into critical topics such as incident response, threat intelligence, and attack surface management. Learn how to align cyber resilience plans with business objectives to reduce potential impacts and secure your organization in an ever-evolving threat landscape.

Register

People on the Move

Gigamon has promoted Tony Jarjoura to CFO and Ram Bhide has been hired as Senior VP of engineering.

Cloud security firm Mitiga has appointed Charlie Thomas as Chief Executive Officer.

Cynet announced the appointment of Jason Magee as Chief Executive Officer.

More People On The Move

Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.